Attorney Docket Number: P-5687-US 

CLAIMS 

[0035] I claim: 

1 . A method comprising determining whether to grant a client access to a wireless 
local area network based on a location of said client. 

2. A method as in claim 1, comprising deterniining whether to withdraw said 
access jfrom said client based on the location of said client. 

3. A method as in claim 1, comprising receiving information available from signals 
broadcast by said client to determine the location of said client 

4. A method as in claim 1, comprising receiving signals from two or more signal 
receivers to determine the location of said client. 

5. A method as in claim 4, wherein receiving signals by two or more signal 
receivers to determine the location of said client comprises receiving signals by 
an access point and a signal receiver whose location is known. 

6. A method as in claim 1 , comprising determining a direction of a source of a 
signal received from said clieiit; and 

using said direction to determine the location of said client. 

7. A method as in claim 1, comprising detertnimng a location fingerprint of a 
signal received from said client; and 

using said location fingerprint to determine a location of said client. 

8. A method as in claim 1 , comprising receiving signals from three or more signal 
receivers; 

triangulating said signals; and 

using said triangulated signals to determine the location of said client. 

9. A method as in claim 1, comprising defining boimdaries of a permitted area. 
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10. A method as in claim 9, comprising storing coordinates of said bomdary in a 
policy server. 

11. A method as in claim 9, comprising recording instances of attempts to gain 
access to said wireless local area network from outside said boundary. 

12. A method as in claim 1 1, comprising issuing an alert upon an attempt to access 
said wireless local area network from outside said boundary. 

13. A method as in claim 9, comprising implementing intrusion reaction measures 
upon an attempt to access said wireless local area network from outside said 
boxmdary. 

14. A method as in claim 1, comprising accepting signals from a signal receiver of a 
signal receiver pair. 

15. A system comprising: 

a signal receiver to determine a location of a client relative to a 
permitted area; and 

a processor to withhold access of said client to said wireless local area 
network if said client is outside of said permitted area. 

16. A system as in claim 15, wherein said processor is to withdraw access to said 
wireless local area network from said client if said client is outside of said 
permitted area. 

17. A system as in claim 15, wherein said signal receiver is to use information from 
a signal broadcast by said client to determine said location of said client 

18. A system as in claim 15, comprising two signal receivers, wherein one of said 
two signal receivers is an access point, and another of said signal receivers 
includes a wireless component whose location is known. 
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19. A system as in claim 15, wherein said signal receiver is to use a direction of the 
source of a signal received firom said cUent to determine the location of said 

20. A system as in claim 15, wherein said signal receiver is to use a location 
fingerprint of a signal received firom said client to determine the location of said 
client. 

21 . A system as in claim 15, comprising a data storage component to record 
instances of attempts to gain access to said wireless local area network area 
from outside of said permitted area. 

22. A system as in claim 15, comprising an alert unit to issue an alert of attempts to 
gain access to said wireless local area network area from outside of said 
permitted area. 

23. A system as in claim 15, wherein said signal receiver is a signal receiver of a 
signal receiver pair, 

24. A system as in claim 15, comprising a poUcy server to store data on boundaries 
of SEiid permitted area. 

25. A computer system comprising: 

an access point; 

a processor to restrict access of a client to a wireless local area network 
based upon location of a client; and 

a security unit to issue an alert upon access attempts from outside a 
permitted area. 

26. A computer system as in claim 25, including a poUcy server to store coordinates 
of a permitted area. 

27. A computer system as in claim 26, includiug a memory. 

28. An article comprising: 
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a storage medium, having stored thereon instructions, that when 
executed, results in the restriction of access of a client to a wireless local 
area network loMtidn of said "clienf . 

29. An article as in claim 28, comprising instructions to determine the location of 
said client. 

30. An article as in claim 28, comprisiag instructions to issue an alert upon access 
attempts from outside a permitted area. 
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